Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm List-Subscribe: List-Archive: List-Post: List-Help: , Sender: cygwin-owner AT cygwin DOT com Mail-Followup-To: cygwin AT cygwin DOT com Delivered-To: mailing list cygwin AT cygwin DOT com Date: Mon, 26 Apr 2004 21:15:21 -0400 From: "Pierre A. Humblet" To: cygwin AT cygwin DOT com Subject: Re: restoring facls after restore from tar Message-ID: <20040427011521.GA300261@hpn5170x> Mail-Followup-To: "Pierre A. Humblet" , cygwin AT cygwin DOT com References: Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: User-Agent: Mutt/1.4.1i On Mon, Apr 26, 2004 at 05:10:02PM -0500, Dick Repasky wrote: > > Hello, > > I just restored an instance of cygwin from a tarball that had been created > with "tar -cf - /cygdrive/c/cygwin". Everything worked fine except sshd > (the only service that I run). The problem turned out to be that file > access control lists needed to be set on cygrunsrv and sshd. Indeed, none > of the facls in /bin and /usr/sbin were restored. I set all files in /bin > and /sbin to have the following acl: > > user::rwx > group::r-x > group:root:rwx > group:SYSTEM:rwx > mask:rwx > other:--- > > And, now, sshd starts fine. > > First question: am I missing anything that will bite me? Does your site have a real issue with giving x (or rx) permission to everybody? It's possible to do so, but then surprises do happen and you have to set acls just right. For example /etc/passwd and /etc/group should be readable by all, or at least by SYSTEM. > Second question: how can I backup facls as part of a tar backup and > restore them? tar does not store acls, AFAIK. Pierre -- Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple Problem reports: http://cygwin.com/problems.html Documentation: http://cygwin.com/docs.html FAQ: http://cygwin.com/faq/